|
272491
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The nft_flush_table function in net/netfilter/nf_tables_api.c in the Linux kernel before 3.18.5 mishandles the interaction between cross-chain jumps and ruleset flushes, which allows local users to c…
|
CWE-19
Data Processing Errors
|
CVE-2015-1573
|
2024-11-21 11:25 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272492
|
5.5 |
MEDIUM
Local
|
linux
redhat
|
linux_kernel
enterprise_linux
enterprise_mrg
|
The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cau…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2015-1350
|
2024-11-21 11:25 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272493
|
6.2 |
MEDIUM
Local
|
linux
novell
|
linux_kernel
suse_linux_enterprise_debuginfo
suse_linux_enterprise_real_time_extension
|
Memory leak in the cuse_channel_release function in fs/fuse/cuse.c in the Linux kernel before 4.4 allows local users to cause a denial of service (memory consumption) or possibly have unspecified oth…
|
CWE-399
Resource Management Errors
|
CVE-2015-1339
|
2024-11-21 11:25 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272494
|
6.5 |
MEDIUM
Network
|
debian
libtiff
|
debian_linux
libtiff
|
The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted TIFF image, as demonstrated by libtiff5.tif.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1547
|
2024-11-21 11:25 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272495
|
- |
|
canonical
|
ubuntu_linux
lxcfs
|
The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions, which allows local users to gain privileges by writing a pid to the tasks file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1344
|
2024-11-21 11:25 |
2015-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272496
|
- |
|
canonical
|
ubuntu_linux
lxcfs
|
LXCFS before 0.12 does not properly enforce directory escapes, which might allow local users to gain privileges by (1) querying or (2) updating a cgroup.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1342
|
2024-11-21 11:25 |
2015-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272497
|
- |
|
google
|
chrome
|
The PDF viewer in Google Chrome before 46.0.2490.86 does not properly restrict scripting messages and API exposure, which allows remote attackers to bypass the Same Origin Policy via an unintended em…
|
CWE-20
Improper Input Validation
|
CVE-2015-1302
|
2024-11-21 11:25 |
2015-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272498
|
- |
|
google
|
chrome
|
object-observe.js in Google V8, as used in Google Chrome before 45.0.2454.101, does not properly restrict method calls on access-checked objects, which allows remote attackers to bypass the Same Orig…
|
CWE-284
Improper Access Control
|
CVE-2015-1304
|
2024-11-21 11:25 |
2015-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272499
|
- |
|
google
|
chrome
|
bindings/core/v8/V8DOMWrapper.h in Blink, as used in Google Chrome before 45.0.2454.101, does not perform a rethrow action to propagate information about a cross-context exception, which allows remot…
|
CWE-20
Improper Input Validation
|
CVE-2015-1303
|
2024-11-21 11:25 |
2015-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272500
|
- |
|
simpestreams_project
canonical
|
simplestreams
ubuntu_linux
|
Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (ak…
|
CWE-20
Improper Input Validation
|
CVE-2015-1337
|
2024-11-21 11:25 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
